Lucene search
ZteCVELIST:CVE-2018-7355HistorySep 26, 2018 - 4:00 p.m.
CVE-2018-7355
2018-09-2616:00:00
zte
www.cve.org
0.001 Low
EPSS
Percentile
47.1%
All versions up to V1.0.0B05 of ZTE MF65 and all versions up to V1.0.0B02 of ZTE MF65M1 are impacted by cross-site scripting vulnerability. Due to improper neutralization of input during web page generation, an attacker could exploit this vulnerability to conduct reflected XSS or HTML injection attacks on the devices.
CNA Affected
[
{
"product": "MF65",
"vendor": "ZTE",
"versions": [
{
"lessThanOrEqual": "V1.0.0B05",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
},
{
"product": "MF65M1",
"vendor": "ZTE",
"versions": [
{
"lessThanOrEqual": "V1.0.0B02",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2018-7355
2018-09-26 16:29:01
nvd
nvd
CVE-2018-7355
2018-09-26 16:29:01
zdt
zdt
ZTE MF65 BD_HDV6MF65V1.0.0B05 - Cross-Site Scripting Vulnerability
2019-01-09 00:00:00
packetstorm
packetstorm
ZTE MF65 BD_HDV6MF65V1.0.0B05 Cross Site Scripting
2019-01-09 00:00:00
prion
prion
Cross site scripting
2018-09-26 16:29:00
exploitpack
exploitpack
ZTE MF65 BD_HDV6MF65V1.0.0B05 - Cross-Site Scripting
2019-01-09 00:00:00
exploitdb
exploitdb
ZTE MF65 BD_HDV6MF65V1.0.0B05 - Cross-Site Scripting
2019-01-09 00:00:00